usnistgov/macos_security
1
0
Fork 0
mirror of https://github.com/usnistgov/macos_security.git synced 2026-02-09 00:09:55 +00:00
Code Issues 21 Actions Packages Projects Releases Wiki Activity

unable to generate tailored baseline #109

New Issue
Closed
opened 2026-01-19 18:29:16 +00:00 by michael · 1 comment
michael commented 2026-01-19 18:29:16 +00:00
Owner
Copy Link

Originally created by @ericbeme on GitHub.

Summary

unable to generate tailored baseline based off of stif

Steps to reproduce

try to tailor a baseline

Operating System version

Sonoma 14.3.1. (yes i am working out of the right branch)...

Intel or Apple Silicon

Apple Silicon Mac

What is the current bug behavior?

asks normal questions until os_install_log_retention_configure" in your benchmark? [Y/n/all/?]: y

then stops and outputs the following:

ODV value: Number of days.
Traceback (most recent call last):
File "/Users/mediaadmin/macos_security/./scripts/generate_baseline.py", line 562, in
main()
File "/Users/mediaadmin/macos_security/./scripts/generate_baseline.py", line 551, in main
odv_baseline_rules = odv_query(found_rules, benchmark)
File "/Users/mediaadmin/macos_security/./scripts/generate_baseline.py", line 442, in odv_query
if isinstance(rule.rule_odv[benchmark], int):
KeyError: 'stig'

What is the expected correct behavior?

continue to ask ?'s to tailor baseline

Relevant logs and/or screenshots

Screenshot 2024-02-26 at 3 14 09 PM
Originally created by @ericbeme on GitHub. ### Summary unable to generate tailored baseline based off of stif ### Steps to reproduce try to tailor a baseline ### Operating System version Sonoma 14.3.1. (yes i am working out of the right branch)... ### Intel or Apple Silicon Apple Silicon Mac ### What is the current *bug* behavior? asks normal questions until os_install_log_retention_configure" in your benchmark? [Y/n/all/?]: y then stops and outputs the following: ODV value: Number of days. Traceback (most recent call last): File "/Users/mediaadmin/macos_security/./scripts/generate_baseline.py", line 562, in <module> main() File "/Users/mediaadmin/macos_security/./scripts/generate_baseline.py", line 551, in main odv_baseline_rules = odv_query(found_rules, benchmark) File "/Users/mediaadmin/macos_security/./scripts/generate_baseline.py", line 442, in odv_query if isinstance(rule.rule_odv[benchmark], int): KeyError: 'stig' ### What is the expected *correct* behavior? continue to ask ?'s to tailor baseline ### Relevant logs and/or screenshots <img width="912" alt="Screenshot 2024-02-26 at 3 14 09 PM" src="https://github.com/usnistgov/macos_security/assets/161378371/5e274f99-a550-473d-9256-6c39488bdb71">
michael commented 2026-01-19 18:29:16 +00:00
Author
Owner
Copy Link

@robertgendler commented on GitHub:

Thanks for finding this! @brodjieski just fixed it and PR #367 should have fixed it and some other DISA STIG related issues.

@robertgendler commented on GitHub: Thanks for finding this! @brodjieski just fixed it and PR #367 should have fixed it and some other DISA STIG related issues.
Sign in to join this conversation.
No Branch/Tag Specified
Branches Tags
Labels
No items
No Label
Milestone
No items
No Milestone
Projects
Clear projects
No project
Assignees
Clear assignees
michael
No Assignees
1 Participants
Notifications
Due Date
No due date set.
Dependencies

No dependencies set.

Reference: usnistgov/macos_security#109
Delete Branch "%!s()"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?